Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/kuLwgEFiRks9KckasH7tP715QaQ.roa
File: kuLwgEFiRks9KckasH7tP715QaQ.roa (raw, json)
Hash identifier: HY+VPgcM/vvlp898D8yDrlmSxOu3npBgQBHP5NYb5b8=
Subject key identifier: 92:E2:F0:80:41:62:46:4B:3D:29:C9:1A:B0:7E:ED:3F:BD:79:41:A4
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 01855982CC8EC8B6832E91AEA00BF1C02CA4
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/kuLwgEFiRks9KckasH7tP715QaQ.roa
Signing time: Wed 28 Dec 2022 16:13:42 +0000
ROA not before: Wed 28 Dec 2022 16:13:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 77.37.91.0/24 maxlen: 24
77.37.94.0/24 maxlen: 24
77.37.95.0/24 maxlen: 24
77.37.40.0/24 maxlen: 24
77.37.41.0/24 maxlen: 24
77.37.43.0/24 maxlen: 24
77.37.52.0/24 maxlen: 24
77.37.60.0/24 maxlen: 24
93.127.203.0/24 maxlen: 24
93.127.212.0/24 maxlen: 24
93.127.219.0/24 maxlen: 24
93.127.164.0/24 maxlen: 24
93.127.167.0/24 maxlen: 24
93.127.171.0/24 maxlen: 24
93.127.179.0/24 maxlen: 24
93.127.188.0/24 maxlen: 24
93.127.190.0/24 maxlen: 24
93.127.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:59:82:cc:8e:c8:b6:83:2e:91:ae:a0:0b:f1:c0:2c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Dec 28 16:13:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92e2f0804162464b3d29c91ab07eed3fbd7941a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c5:b7:07:7d:05:2e:ad:d8:9b:6b:ef:28:dd:
f7:c5:ae:0b:19:4a:c2:13:b2:87:b6:f7:e7:48:fc:
41:95:c3:87:1c:e6:7f:7c:59:b4:d3:54:5a:18:02:
fa:9b:ef:bc:fd:b7:c7:9f:0a:c4:b5:b6:95:f2:86:
5e:ea:70:2b:f0:00:2b:87:2c:d0:d1:8b:a9:73:d7:
bd:28:4f:b6:9c:e1:ed:b1:a3:90:81:ed:61:11:05:
37:77:52:4a:2a:09:0f:aa:f4:50:88:c5:db:60:eb:
c5:46:96:3f:30:9f:a1:1a:95:39:4d:e2:f7:85:77:
32:0e:b3:d2:44:84:ad:4b:ca:62:45:79:20:78:06:
e0:89:b1:cc:4d:e9:75:10:59:b7:c9:fa:a3:44:97:
99:11:2b:b5:17:3e:9b:23:3c:64:91:ca:c7:74:ac:
cd:af:37:20:04:71:29:c9:3b:f2:34:5c:28:8f:e8:
b3:26:75:3a:fd:9f:ff:a6:bc:d1:ae:ee:39:36:2b:
eb:1c:9c:1c:fa:92:97:8a:10:33:a3:d6:1d:22:ec:
ee:46:48:9d:69:c8:7f:14:66:3c:05:cf:0a:cf:a2:
78:4d:2b:69:d2:8c:68:2b:fd:2c:4d:83:db:c3:83:
25:41:39:13:de:6d:d6:6e:cf:18:8a:a9:2a:38:c7:
78:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E2:F0:80:41:62:46:4B:3D:29:C9:1A:B0:7E:ED:3F:BD:79:41:A4
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/kuLwgEFiRks9KckasH7tP715QaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.40.0/23
77.37.43.0/24
77.37.52.0/24
77.37.60.0/24
77.37.91.0/24
77.37.94.0/23
93.127.164.0/24
93.127.167.0/24
93.127.171.0/24
93.127.179.0/24
93.127.188.0/24
93.127.190.0/23
93.127.203.0/24
93.127.212.0/24
93.127.219.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:c6:b2:10:90:a7:b5:f2:35:9e:21:bc:a3:9c:08:a3:2a:d8:
35:68:39:12:f0:ed:92:66:d9:81:35:d7:b8:41:83:89:ae:45:
57:46:39:9b:f7:28:c0:25:b1:8f:e1:2a:12:0b:54:ff:7a:50:
b0:1c:e5:d0:9f:c8:4d:ca:b3:75:d6:84:7a:0a:f5:6b:90:66:
82:6a:d3:88:a4:c9:da:a4:ea:88:b6:d6:33:da:85:47:bb:a5:
7c:e0:aa:86:30:f2:40:42:3a:d6:f9:e4:d0:7e:34:56:99:eb:
23:9b:fe:15:57:dd:8a:29:b0:9c:9c:f6:8e:88:b0:98:d3:f2:
8f:77:e4:fc:05:20:0a:a6:5a:79:b1:d8:07:9e:df:5f:b4:93:
11:86:1b:7c:3b:6a:b2:e6:33:91:9f:03:7e:e3:c7:28:cd:79:
2c:36:d9:23:2c:eb:f5:76:3f:a3:8a:a8:af:f2:87:aa:a3:1f:
f0:d9:6c:59:b6:28:11:d2:f1:3f:0f:59:d8:65:d9:ad:d1:50:
d9:80:ec:eb:83:3f:d4:af:d9:ab:23:98:22:11:e5:50:cf:6b:
7c:22:f0:ab:8d:e6:c2:1c:56:94:88:ea:90:ca:5a:36:8e:e6:
25:cc:ee:5a:ab:09:a5:93:16:22:e1:14:b9:a7:6f:2f:cf:7d:
97:9b:02:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:41:36 2025 by rpki-client